IETF Logo Mail Archive

Re: [Rats] draft-ietf-rats-architecture-04

Laurence Lundblade <lgl@island-resort.com> Tue, 16 June 2020 01:37 UTC

Return-Path: <lgl@island-resort.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 05C7B3A0F71 for <rats@ietfa.amsl.com>; Mon, 15 Jun 2020 18:37:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qZY1He-k2DLW for <rats@ietfa.amsl.com>; Mon, 15 Jun 2020 18:37:29 -0700 (PDT)
Received: from p3plsmtpa06-02.prod.phx3.secureserver.net (p3plsmtpa06-02.prod.phx3.secureserver.net [173.201.192.103]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 64E673A0F70 for <rats@ietf.org>; Mon, 15 Jun 2020 18:37:29 -0700 (PDT)
Received: from laurences-mbp.lan ([70.58.199.219]) by :SMTPAUTH: with ESMTPA id l0XXj9SrOE4Khl0XYjKTJ9; Mon, 15 Jun 2020 18:37:28 -0700
X-CMAE-Analysis: v=2.3 cv=QpUgIm6d c=1 sm=1 tr=0 a=vYbQBYz1awqCo8DrEKtgEg==:117 a=vYbQBYz1awqCo8DrEKtgEg==:17 a=7CQSdrXTAAAA:8 a=CzY0xkpdAAAA:8 a=48vgC7mUAAAA:8 a=3kUTkTNGHhxHt93h84QA:9 a=ffKwp_32ixFjasYi:21 a=la1PaMVOqxSxPs9_:21 a=QEXdDO2ut3YA:10 a=6DiNUfqtzj5sTujcTe8A:9 a=cGWtblw4qRZL_U19:21 a=PyNt6U0Yvf3hqAG8:21 a=1Y4TuuYipmtIveRP:21 a=_W_S_7VecoQA:10 a=a-qgeE7W1pNrGK8U0ZQC:22 a=nHOZnf5REYPFsX_CNJmG:22 a=w1C3t2QeGrPiZgrLijVG:22
X-SECURESERVER-ACCT: lgl@island-resort.com
From: Laurence Lundblade <lgl@island-resort.com>
Message-Id: <ED486BA3-D772-4F60-A3C7-ABC95072F0A1@island-resort.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_94B482FA-AA4C-49C8-9A46-17EAF7BDA12B"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.80.23.2.2\))
Date: Mon, 15 Jun 2020 18:37:27 -0700
In-Reply-To: <AM0PR08MB37168B75C592DA7892179957FA820@AM0PR08MB3716.eurprd08.prod.outlook.com>
Cc: "rats@ietf.org" <rats@ietf.org>
To: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
References: <AM0PR08MB37168B75C592DA7892179957FA820@AM0PR08MB3716.eurprd08.prod.outlook.com>
X-Mailer: Apple Mail (2.3608.80.23.2.2)
X-CMAE-Envelope: MS4wfGga6ZS+DE4cspS94ABtsflcpEsdXfqEjEpo9vX1RWb8GlCF1nssHztnfhJ6MMlDpbeDM9Pz9jPLjB3952VKNQFatUp99Sd6WfEN+1giQ/ilVXVDZ2R0 8Xn+7uWtnhuEOMkRseqL+km1YI7ocTVDxJNKZu+f0OU2P5OYSIcPr1Oxm1ObLluJu64Cn3eEIPg4F+bw0Nd4MiqeKBRGiFW3Ihg=
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/ztI8fpWmeLhxm8vR8LpxrJpRVew>
Subject: Re: [Rats] draft-ietf-rats-architecture-04
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 Jun 2020 01:37:31 -0000

Hi Hannes,

I think readability of the document could be improved and maybe some simplification would be OK, but I generally think most of the core entities and messages make sense.


> On Jun 9, 2020, at 12:13 AM, Hannes Tschofenig <Hannes.Tschofenig@arm.com> wrote:
> 
> Hi all
>  
> I have re-read the architecture document and IMHO it is still far too complex. It makes the reader believe that attestation is some rocket-science concept, which it just isn’t. After such a long time the document is unnecessarily hard to read and understand. 
>  
> Here is the story as I see it.
>  
> In the basic form a device puts a bunch of claims together and then signs them. The device is the attester.
> Then, this information is sent to another party, the relying party, which uses this information for some kind of decision making.

Evidence is just the name for “this information”.

>  
> Of course, there is some prior setup that has to happen (provisioning of keys during manufacturing) and some assumptions have to be made as well (attestation code on the device has to be well protected, code isolation being used, etc.).

Endorsements are the mechanism by which this happens.

>  
> Then, there is the a complex case where the relying party cannot use the received information directly. This is most likely related to any form of software measurements. If you send a hash of a bootloader to some relying party you cannot really expect it to be used for anything. The reason the relying party cannot use that information directly is because it does not know what software the device is really supposed to be running. Hence, there is a need to consult another party (let’s call it the verifier). The assumption is that this party knows what the expected fingerprint is and hence what software is running on the device.

Which is why the terms Verifier and Results are used.

>  
> That’s all. There is not much more complexity to this topic.  

I personally would be happy without the Owners and the Appraisal Policies in the architecture as they seem obviously implied, but not enough to ask they be removed. 

>  
> So, where do all these terms come from? Appraisal policies, evidence, endorser, ...
>  
> I would delete them and see whether the idea still gets across.

I think more clear writing would help.

(We could put text in https://www.scribens.com and look at the Flesch and Gunning Fog indexes for readability under statistics)

LL

>  
> Ciao
> Hannes
>  
> IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you. _______________________________________________
> RATS mailing list
> RATS@ietf.org <mailto:RATS@ietf.org>
> https://www.ietf.org/mailman/listinfo/rats <https://www.ietf.org/mailman/listinfo/rats>

v2.23.0 | Report a Bug | By Email